Résultats d'analyse de  Farbar Recovery Scan Tool (FRST) (x64) Version: 31-07-2017
Exécuté par azca (administrateur) sur AZCA-PC (04-08-2017 11:35:22)
Exécuté depuis C:\Users\azca\Downloads
Profils chargés: azca (Profils disponibles: azca)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 8 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
() C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Copyright (c) 2017 Plays.tv, LLC) C:\Program Files (x86)\Raptr Inc\PlaysTV\plays_service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
() C:\Program Files (x86)\NETGEAR\WNA1000Mv2\WifiSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Flux Software LLC) C:\Users\azca\AppData\Local\FluxSoftware\Flux\flux.exe
(© 2015 Microsoft Corporation) C:\Users\azca\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(Hammer & Chisel, Inc.) C:\Users\azca\AppData\Local\Discord\app-0.0.297\Discord.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
() C:\Program Files (x86)\NETGEAR\WNA1000Mv2\WNA1000Mv2.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(Hammer & Chisel, Inc.) C:\Users\azca\AppData\Local\Discord\app-0.0.297\Discord.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Hammer & Chisel, Inc.) C:\Users\azca\AppData\Local\Discord\app-0.0.297\Discord.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Skype Technologies) C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Skype Technologies) C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe
() C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.87\deploy\LeagueClient.exe
() C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.87\deploy\LeagueClientUx.exe
() C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.87\deploy\LeagueClientUxRender.exe
() C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.87\deploy\LeagueClientUxRender.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\wbengine.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe

==================== Registre (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2013-04-26] (Intel Corporation)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [97512 2017-06-13] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [918008 2017-07-19] (Avira Operations GmbH & Co. KG)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3501405898-390033097-3711426353-1000\...\Run: [f.lux] => C:\Users\azca\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-24] (Flux Software LLC)
HKU\S-1-5-21-3501405898-390033097-3711426353-1000\...\Run: [BingSvc] => C:\Users\azca\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-3501405898-390033097-3711426353-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8912088 2016-08-26] (Piriform Ltd)
HKU\S-1-5-21-3501405898-390033097-3711426353-1000\...\Run: [Discord] => C:\Users\azca\AppData\Local\Discord\app-0.0.297\Discord.exe [64290304 2017-01-04] (Hammer & Chisel, Inc.)
HKU\S-1-5-21-3501405898-390033097-3711426353-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [5094080 2017-07-03] (Disc Soft Ltd)
HKU\S-1-5-21-3501405898-390033097-3711426353-1000\...\MountPoints2: E - E:\MENU.EXE
HKU\S-1-5-21-3501405898-390033097-3711426353-1000\...\MountPoints2: {588db86e-5673-11e7-84e5-f832e4ba2183} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3501405898-390033097-3711426353-1000\...\MountPoints2: {7dbce98b-30b1-11e6-bc70-806e6f6e6963} - D:\.\Bin\ASSETUP.exe
HKU\S-1-5-21-3501405898-390033097-3711426353-1000\...\MountPoints2: {e36a5406-b492-11e6-b8d9-f832e4ba2183} - E:\MENU.EXE
HKU\S-1-5-21-3501405898-390033097-3711426353-1000\...\MountPoints2: {e36a5408-b492-11e6-b8d9-f832e4ba2183} - F:\_aomg.exe
HKU\S-1-5-21-3501405898-390033097-3711426353-1000\...\MountPoints2: {e36a540d-b492-11e6-b8d9-f832e4ba2183} - G:\_aomg.exe
HKU\S-1-5-21-3501405898-390033097-3711426353-1000\...\MountPoints2: {e36a540f-b492-11e6-b8d9-f832e4ba2183} - H:\_aomg.exe
HKU\S-1-5-21-3501405898-390033097-3711426353-1000\...\MountPoints2: {e6d875c1-7032-11e6-be67-f832e4ba2183} - F:\MENU.EXE
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WNA1000Mv2 Genie.lnk [2016-12-31]
ShortcutTarget: NETGEAR WNA1000Mv2 Genie.lnk -> C:\Program Files (x86)\NETGEAR\WNA1000Mv2\WNA1000Mv2.exe ()
GroupPolicy: Restriction - Chrome <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\Parameters: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{33AD7174-86CA-428D-B63D-C6B8BF605B86}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{5D4073C5-E434-4570-9103-F418C5477BF9}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{5D4073C5-E434-4570-9103-F418C5477BF9}: [DhcpNameServer] 8.8.8.8
Tcpip\..\Interfaces\{BE474D62-E4F4-49C8-9F35-D6FCAE05182A}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{BE474D62-E4F4-49C8-9F35-D6FCAE05182A}: [DhcpNameServer] 8.8.8.8
Tcpip\..\Interfaces\{EF0BEE89-A9DB-4FF0-9553-9A53E8A51F69}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{EF0BEE89-A9DB-4FF0-9553-9A53E8A51F69}: [DhcpNameServer] 192.168.1.254

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.yahoo.com/web?fr=avira-hp
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.yahoo.com/web?fr=avira-hp
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://search.yahoo.com/web?fr=avira-ds
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxps://search.yahoo.com/web?fr=avira-ds
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxps://search.yahoo.com/web?fr=avira-hp
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxps://search.yahoo.com/web?fr=avira-hp
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://search.yahoo.com/web?fr=avira-ds
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://search.yahoo.com/web?fr=avira-ds
HKU\S-1-5-21-3501405898-390033097-3711426353-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.yahoo.com/web?fr=avira-hp
HKU\S-1-5-21-3501405898-390033097-3711426353-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/fr-fr/?ocid=iehp
HKU\S-1-5-21-3501405898-390033097-3711426353-1000\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://search.yahoo.com/web?fr=avira-ds
HKU\S-1-5-21-3501405898-390033097-3711426353-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxps://search.yahoo.com/web?fr=avira-hp
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> DefaultScope la valeur est absente
SearchScopes: HKU\S-1-5-21-3501405898-390033097-3711426353-1000 -> DefaultScope {9FFEE954-DB75-492A-B1CA-BA23C9B83007} URL = 
SearchScopes: HKU\S-1-5-21-3501405898-390033097-3711426353-1000 -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = hxxp://www.bing.com/search?FORM=SK216DF&PC=SK216&q={searchTerms}&src=IE-SearchBox
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF DefaultProfile: 
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-06-03] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-06-03] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
StartMenuInternet: FIREFOX.EXE - firefox.exe

Chrome: 
=======
CHR DefaultProfile: Default
CHR DefaultSearchURL: Default -> hxxps://search.avira.com/#web/result?source=omnibar&q={searchTerms}
CHR DefaultSearchKeyword: Default -> Avira
CHR DefaultSuggestURL: Default -> hxxps://search.avira.com/suggestions?q={searchTerms}&li=ff&hl=en
CHR Profile: C:\Users\azca\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2017-07-30] <==== ATTENTION
CHR Extension: (Pas de nom) - C:\Users\azca\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-04-16]
CHR Extension: (Pas de nom) - C:\Users\azca\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aohghmighlieiainnegkcijnfilokake [2017-04-16]
CHR Extension: (Pas de nom) - C:\Users\azca\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-04-16]
CHR Extension: (Pas de nom) - C:\Users\azca\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-04-16]
CHR Extension: (Chrome Web Store Payments) - C:\Users\azca\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-04-16]
CHR Extension: (Chrome Media Router) - C:\Users\azca\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-07-02]
CHR Profile: C:\Users\azca\AppData\Local\Google\Chrome\User Data\ChromeDefaultData2 [2017-07-30] <==== ATTENTION
CHR Extension: (Pas de nom) - C:\Users\azca\AppData\Local\Google\Chrome\User Data\ChromeDefaultData2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-06-12]
CHR Extension: (Pas de nom) - C:\Users\azca\AppData\Local\Google\Chrome\User Data\ChromeDefaultData2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-06-12]
CHR Extension: (Plays.tv Chrome Extension) - C:\Users\azca\AppData\Local\Google\Chrome\User Data\ChromeDefaultData2\Extensions\cbpfcepjgonbhjiaokfnomnfpfljabkh [2016-11-04]
CHR Extension: (Ecosia - The search engine that plants trees) - C:\Users\azca\AppData\Local\Google\Chrome\User Data\ChromeDefaultData2\Extensions\clellnciejhoedgepbdilbkdkaoecgpc [2016-12-26]
CHR Extension: (Sardalert - alert Live - Sardoche) - C:\Users\azca\AppData\Local\Google\Chrome\User Data\ChromeDefaultData2\Extensions\elnpfaoipdfdhikjacbpcfhpnehjjaii [2016-12-27]
CHR Extension: (Pas de nom) - C:\Users\azca\AppData\Local\Google\Chrome\User Data\ChromeDefaultData2\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2017-01-28]
CHR Extension: (Pas de nom) - C:\Users\azca\AppData\Local\Google\Chrome\User Data\ChromeDefaultData2\Extensions\kmhkepipobnjllejbafajoemahjejdcm [2017-02-18]
CHR Extension: (Chrome Web Store Payments) - C:\Users\azca\AppData\Local\Google\Chrome\User Data\ChromeDefaultData2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-19]
CHR Extension: (Pas de nom) - C:\Users\azca\AppData\Local\Google\Chrome\User Data\ChromeDefaultData2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-06-12]
CHR Extension: (Chrome Media Router) - C:\Users\azca\AppData\Local\Google\Chrome\User Data\ChromeDefaultData2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-01-27]
CHR Profile: C:\Users\azca\AppData\Local\Google\Chrome\User Data\Default [2017-08-04]
CHR Extension: (Google Docs) - C:\Users\azca\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-02-22]
CHR Extension: (Google Drive) - C:\Users\azca\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-02-22]
CHR Extension: (YouTube) - C:\Users\azca\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-02-22]
CHR Extension: (Avira Safe Shopping) - C:\Users\azca\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2017-07-19]
CHR Extension: (Adblock Plus) - C:\Users\azca\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-07-20]
CHR Extension: (Redirection de l'omnibox vers Ecosia (Legacy)) - C:\Users\azca\AppData\Local\Google\Chrome\User Data\Default\Extensions\clellnciejhoedgepbdilbkdkaoecgpc [2017-05-12]
CHR Extension: (Sardalert - alert Live - Sardoche) - C:\Users\azca\AppData\Local\Google\Chrome\User Data\Default\Extensions\elnpfaoipdfdhikjacbpcfhpnehjjaii [2017-06-07]
CHR Extension: (AdBlock) - C:\Users\azca\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-07-20]
CHR Extension: (iGraal) - C:\Users\azca\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmhkepipobnjllejbafajoemahjejdcm [2017-07-21]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\azca\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09]
CHR Extension: (Règle pour mesurer) - C:\Users\azca\AppData\Local\Google\Chrome\User Data\Default\Extensions\pemefhlbiinkcopbapnfghcnjhlgceof [2017-05-04]
CHR Extension: (Gmail) - C:\Users\azca\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-02-22]
CHR Extension: (Chrome Media Router) - C:\Users\azca\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-07-14]
CHR Profile: C:\Users\azca\AppData\Local\Google\Chrome\User Data\Guest Profile [2017-07-30]
CHR Profile: C:\Users\azca\AppData\Local\Google\Chrome\User Data\System Profile [2017-07-30]
CHR HKLM\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] - hxxps://clients2.google.com/service/update2/crx
StartMenuInternet: Google Chrome - Chrome.exe

==================== Services (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1128432 2017-07-19] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [490968 2017-07-19] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [490968 2017-07-19] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1524216 2017-07-19] (Avira Operations GmbH & Co. KG)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728 2013-05-07] ()
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [377976 2017-06-13] (Avira Operations GmbH & Co. KG)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2289856 2017-07-03] (Disc Soft Ltd)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [409128 2017-02-10] (EasyAntiCheat Ltd)
S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [104448 2017-02-17] (Freemake) [Fichier non signé]
U2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2017-05-12] (Hi-Rez Studios) [Fichier non signé]
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Fichier non signé]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [3815712 2016-04-07] (INCA Internet Co., Ltd.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495224 2017-05-03] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495224 2017-05-03] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [450168 2017-05-03] (NVIDIA Corporation)
R2 PlaysService; C:\Program Files (x86)\Raptr Inc\PlaysTV\plays_service.exe [55000 2017-06-29] (Copyright (c) 2017 Plays.tv, LLC)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10885360 2017-05-31] (TeamViewer GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)
R2 WSWNA1000Mv2; C:\Program Files (x86)\NETGEAR\WNA1000Mv2\WifiSvc.exe [316120 2014-08-18] ()

===================== Pilotes (Avec liste blanche) ======================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2012-08-22] ()
R0 avdevprot; C:\Windows\System32\DRIVERS\avdevprot.sys [64504 2017-06-06] (Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [185032 2017-06-06] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [149976 2017-06-06] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [35328 2017-06-06] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [78600 2017-06-06] (Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\Windows\System32\Drivers\avusbflt.sys [34128 2017-06-06] (Avira Operations GmbH & Co. KG)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-09-01] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-09-01] (Disc Soft Ltd)
R3 e1dexpress; C:\Windows\System32\DRIVERS\e1d62x64.sys [494864 2013-08-29] (Intel Corporation)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2013-08-07] (Intel Corporation)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30328 2017-05-03] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [48248 2017-05-03] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [57976 2017-05-03] (NVIDIA Corporation)
S3 RtlWlanu; C:\Windows\System32\DRIVERS\rtwlanu.sys [3409112 2014-07-30] (Realtek Semiconductor Corporation                           )
R1 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp6.sys [131144 2017-04-28] (Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\System32\DRIVERS\VBoxNetLwf.sys [205952 2017-04-28] (Oracle Corporation)
R1 vmm; C:\Windows\system32\Pilotes\vmm.sys [296816 2007-02-18] (Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2017-08-04 11:35 - 2017-08-04 11:35 - 000024296 _____ C:\Users\azca\Downloads\FRST.txt
2017-08-04 11:35 - 2017-08-04 11:35 - 000000000 ____D C:\FRST
2017-08-04 11:34 - 2017-08-04 11:34 - 002381312 _____ (Farbar) C:\Users\azca\Downloads\FRST64.exe
2017-08-04 10:58 - 2017-08-04 10:58 - 000147139 _____ C:\Users\azca\Desktop\ZHPDiag.txt
2017-08-04 10:56 - 2017-08-04 10:57 - 000000000 ____D C:\Users\azca\AppData\Roaming\ZHP
2017-08-04 10:56 - 2017-08-04 10:57 - 000000000 ____D C:\Users\azca\AppData\Local\ZHP
2017-08-04 10:56 - 2017-08-04 10:56 - 000000822 _____ C:\Users\azca\Desktop\ZHPDiag.lnk
2017-08-04 10:55 - 2017-08-04 10:56 - 002806144 _____ C:\Users\azca\Downloads\ZHPDiag3.exe
2017-07-30 11:52 - 2017-07-30 11:52 - 035709112 _____ (Adlice Software ) C:\Users\azca\Downloads\setup (1).exe
2017-07-30 11:48 - 2017-07-30 11:48 - 064025992 _____ (Malwarebytes ) C:\Users\azca\Downloads\mb3-setup-35891.35891-3.1.2.1733-1.0.139-1.0.2060 (1).exe
2017-07-30 11:45 - 2017-07-30 11:45 - 016898832 _____ C:\Users\azca\Downloads\gu5setup (1).exe
2017-07-30 11:43 - 2017-07-30 11:43 - 016898832 _____ C:\Users\azca\Downloads\gu5setup.exe
2017-07-30 11:42 - 2017-07-30 11:42 - 000000000 ____D C:\Users\azca\Documents\Ccleaner
2017-07-30 11:41 - 2017-07-30 11:41 - 008162248 _____ (Malwarebytes) C:\Users\azca\Downloads\adwcleaner_7.0.0.0.exe
2017-07-28 12:30 - 2017-07-28 12:30 - 000032745 _____ C:\Users\azca\Downloads\ReleveDebitAmazonTalec.pdf
2017-07-27 12:56 - 2017-07-27 12:56 - 000117968 _____ C:\Users\azca\Desktop\MaFacture.pdf
2017-07-27 12:24 - 2017-07-27 12:25 - 000321782 _____ C:\Users\azca\Desktop\Formulaire Contestation Opé Carte Bancaire V4.pdf
2017-07-27 12:24 - 2017-07-27 12:24 - 000350023 _____ C:\Users\azca\Desktop\Formulaire-_Contestation-Operation-Carte-Bancaire (1).pdf
2017-07-21 19:23 - 2017-07-21 19:23 - 000002581 _____ C:\Users\azca\Downloads\1954805L0381500657834707.ofx
2017-07-20 12:13 - 2017-07-20 12:13 - 000350023 _____ C:\Users\azca\Desktop\Formulaire-_Contestation-Operation-Carte-Bancaire.pdf
2017-07-20 03:19 - 2017-07-20 03:19 - 000000000 ____D C:\Users\azca\AppData\Roaming\Google
2017-07-17 11:24 - 2017-07-17 11:24 - 000002902 _____ C:\Windows\System32\Tasks\{FAD159D2-07FA-46A4-A241-55149E1A30C2}
2017-07-17 11:24 - 2017-07-17 11:24 - 000002902 _____ C:\Windows\System32\Tasks\{BCE65219-046C-4463-9990-6E4837FA5058}
2017-07-17 11:24 - 2017-07-17 11:24 - 000002902 _____ C:\Windows\System32\Tasks\{BBC57597-2A4A-4BF5-A709-830F2C40DDB4}
2017-07-17 11:24 - 2017-07-17 11:24 - 000002902 _____ C:\Windows\System32\Tasks\{71711DA3-7D18-47CC-BC62-51EC92DB5819}
2017-07-17 11:24 - 2017-07-17 11:24 - 000002902 _____ C:\Windows\System32\Tasks\{542AE795-1C2A-4004-B541-D380A47D3D62}
2017-07-17 11:24 - 2017-07-17 11:24 - 000002902 _____ C:\Windows\System32\Tasks\{4B1528A8-437E-4883-A73A-9FB532F32571}
2017-07-17 11:24 - 2017-07-17 11:24 - 000002902 _____ C:\Windows\System32\Tasks\{2D97C276-2B50-460F-AAC6-953CD3BEE5AA}
2017-07-17 11:24 - 2017-07-17 11:24 - 000002902 _____ C:\Windows\System32\Tasks\{11747DE3-2BA9-4A0C-9EDF-A2A69A27C1A4}
2017-07-17 11:23 - 2017-07-17 11:23 - 000002902 _____ C:\Windows\System32\Tasks\{CF2001CB-CDD3-4F52-933E-A8558A108EA9}
2017-07-17 11:23 - 2017-07-17 11:23 - 000002902 _____ C:\Windows\System32\Tasks\{76D2C26D-44C8-452A-A7B9-D8470E2FD4A1}
2017-07-17 11:23 - 2017-07-17 11:23 - 000002902 _____ C:\Windows\System32\Tasks\{46D40DC0-75C5-4B4D-A9B8-B1701E106631}
2017-07-17 11:23 - 2017-07-17 11:23 - 000000000 ____D C:\~QTWTMP.TMP
2017-07-17 00:17 - 2017-07-17 01:03 - 000000000 ____D C:\Users\azca\.VirtualBox
2017-07-17 00:17 - 2017-07-17 00:17 - 000000000 ____D C:\Users\azca\VirtualBox VMs
2017-07-17 00:16 - 2017-07-17 00:16 - 000001079 _____ C:\Users\Public\Desktop\Oracle VM VirtualBox.lnk
2017-07-17 00:16 - 2017-07-17 00:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
2017-07-17 00:16 - 2017-07-17 00:16 - 000000000 ____D C:\Program Files\Oracle
2017-07-17 00:16 - 2017-04-28 17:37 - 000961768 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxDrv.sys
2017-07-17 00:16 - 2017-04-28 17:37 - 000149304 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxUSBMon.sys
2017-07-16 23:48 - 2017-07-16 23:48 - 123669848 _____ (Oracle Corporation) C:\Users\azca\Downloads\VirtualBox-5.1.22-115126-Win.exe
2017-07-16 23:45 - 2017-07-16 23:45 - 000000000 ____D C:\Users\azca\Downloads\Windows 98SE
2017-07-16 23:44 - 2017-07-16 23:45 - 000000000 ____D C:\Users\azca\Downloads\Non
2017-07-16 23:40 - 2017-07-16 23:44 - 000000000 ____D C:\Users\azca\Downloads\Windows 98 SE
2017-07-16 23:40 - 2017-07-16 23:43 - 557977122 ____R C:\Users\azca\Downloads\Windows 98SE.rar
2017-07-16 23:17 - 2017-07-17 10:10 - 000000000 ____D C:\Users\azca\AppData\LocalLow\BitTorrent
2017-07-16 22:20 - 2017-07-16 22:20 - 000018576 _____ (Creative Technology Ltd.) C:\Users\azca\Downloads\Cspman.dll
2017-07-16 22:11 - 2017-07-16 22:12 - 100271992 _____ (Microsoft Corporation) C:\Users\azca\Downloads\directx_Jun2010_redist.exe
2017-07-16 22:06 - 2017-07-16 22:06 - 000000000 ____D C:\Windows\SysWOW64\directx
2017-07-16 21:55 - 2017-07-16 23:01 - 000000000 ____D C:\Users\azca\Pour Windows 98
2017-07-16 21:20 - 2017-07-16 21:21 - 272079569 _____ C:\Users\azca\Downloads\Realtek_High_Definition_Audio_5.10.0.7440.zip
2017-07-16 21:18 - 2017-07-16 21:18 - 001624440 _____ (Tous Les Drivers) C:\Users\azca\Downloads\Mes_Drivers_3.0.4.exe
2017-07-16 20:55 - 2017-07-16 20:55 - 000002902 _____ C:\Windows\System32\Tasks\{5413D152-B552-45F1-BAAE-A2B9D9130BB5}
2017-07-16 20:54 - 2017-07-16 20:54 - 000002902 _____ C:\Windows\System32\Tasks\{F55A3CB9-6CC6-4B76-A841-68FEE41F3774}
2017-07-16 20:54 - 2017-07-16 20:54 - 000002902 _____ C:\Windows\System32\Tasks\{E1C6D030-C338-4951-82CE-D1877D7FE99D}
2017-07-16 20:54 - 2017-07-16 20:54 - 000002902 _____ C:\Windows\System32\Tasks\{D6A9D950-59DE-4914-A244-606657934A9E}
2017-07-16 20:54 - 2017-07-16 20:54 - 000002902 _____ C:\Windows\System32\Tasks\{D42B7AC4-1F1F-4434-A2F4-5781939AB0EC}
2017-07-16 20:54 - 2017-07-16 20:54 - 000002902 _____ C:\Windows\System32\Tasks\{BB6EE9BD-DD5E-4CAB-8DB7-422A20A117DC}
2017-07-16 20:54 - 2017-07-16 20:54 - 000002902 _____ C:\Windows\System32\Tasks\{9C4798A3-C815-4241-96ED-D386640D5124}
2017-07-16 20:54 - 2017-07-16 20:54 - 000002902 _____ C:\Windows\System32\Tasks\{48DBC167-33D5-467D-B29A-32D30354F745}
2017-07-16 20:53 - 1996-05-03 15:00 - 000248560 ____R (Apple Computer, Inc.) C:\Windows\system32\QTVRW.QTC
2017-07-16 20:52 - 1996-05-03 15:00 - 000248560 ____R (Apple Computer, Inc.) C:\Windows\system\QTVRW.QTC
2017-07-16 20:51 - 2017-07-16 20:51 - 000000000 ____D C:\LOUXOR
2017-07-16 20:48 - 2017-07-16 20:48 - 000002960 _____ C:\Windows\System32\Tasks\{36913966-BD60-4709-8AA0-D5D22A2C5D08}
2017-07-16 20:44 - 2017-07-16 20:44 - 000001776 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2017-07-16 20:44 - 2017-07-16 20:44 - 000000000 ____D C:\Program Files\DAEMON Tools Lite
2017-07-16 20:37 - 2017-07-16 20:38 - 000790488 _____ (Disc Soft Ltd.) C:\Users\azca\Downloads\DTLiteInstaller.exe
2017-07-16 20:11 - 2017-07-16 20:11 - 000000000 ____D C:\Users\azca\Downloads\jeu-01594-mysteres_de_louxor_cd2-pcwin
2017-07-16 20:11 - 2017-07-16 20:11 - 000000000 ____D C:\Users\azca\Downloads\jeu-01594-mysteres_de_louxor_cd1-pcwin
2017-07-16 20:10 - 2017-07-16 20:10 - 000000000 ____D C:\Users\azca\Downloads\jobs
2017-07-16 20:05 - 2017-07-16 20:05 - 000000000 ____D C:\Users\azca\Downloads\les_mysteres_de_louxor-nt
2017-07-16 20:02 - 2017-07-16 20:07 - 656474112 ____R C:\Users\azca\Downloads\Windows 98 Se Fr Bootable.iso
2017-07-16 19:41 - 2017-07-16 19:41 - 000001880 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Virtual PC.lnk
2017-07-16 19:41 - 2017-07-16 19:41 - 000000000 ____D C:\Windows\system32\Pilotes
2017-07-16 19:33 - 2017-07-17 21:22 - 000084256 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2017-07-16 19:33 - 2017-07-17 10:08 - 000253856 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-07-16 19:33 - 2017-07-17 10:08 - 000101784 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2017-07-16 19:33 - 2017-07-16 19:55 - 000188352 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMChameleon.sys
2017-07-16 19:33 - 2017-07-16 19:55 - 000077376 _____ C:\Windows\system32\Drivers\mbae64.sys
2017-07-16 19:33 - 2017-07-16 19:33 - 032005504 _____ (Microsoft Corporation) C:\Users\azca\Downloads\setup.exe
2017-07-16 19:31 - 2017-07-16 19:31 - 064025992 _____ (Malwarebytes ) C:\Users\azca\Downloads\mb3-setup-35891.35891-3.1.2.1733-1.0.139-1.0.2060.exe
2017-07-16 19:31 - 2017-07-16 19:31 - 035612552 _____ (Adlice Software ) C:\Users\azca\Downloads\RogueKiller_setup.exe
2017-07-16 19:31 - 2017-07-16 19:31 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_avusbflt_01011.Wdf
2017-07-16 19:31 - 2017-06-06 17:18 - 000185032 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2017-07-16 19:31 - 2017-06-06 17:18 - 000149976 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2017-07-16 19:31 - 2017-06-06 17:18 - 000078600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2017-07-16 19:31 - 2017-06-06 17:18 - 000064504 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avdevprot.sys
2017-07-16 19:31 - 2017-06-06 17:18 - 000035328 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2017-07-16 19:31 - 2017-06-06 17:18 - 000034128 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avusbflt.sys
2017-07-16 19:29 - 2017-07-19 01:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2017-07-16 19:29 - 2017-07-16 19:29 - 004806912 _____ (Avira Operations GmbH & Co. KG) C:\Users\azca\Downloads\avira_fr_av_596b9bb921179__ws1.exe
2017-07-16 19:29 - 2017-07-16 19:29 - 000001213 _____ C:\Users\Public\Desktop\Avira Connect.lnk
2017-07-16 19:25 - 2017-07-16 19:25 - 000000000 ____D C:\Users\azca\AppData\Roaming\Avira
2017-07-16 19:06 - 2017-07-16 19:26 - 000000000 ____D C:\Users\azca\Downloads\Windows_98_Se_Fr_Bootable
2017-07-16 19:04 - 2017-07-16 19:26 - 000000000 ____D C:\Users\Public\Speedup Sessions
2017-07-16 19:04 - 2017-07-16 19:04 - 000000000 ____D C:\Windows\System32\Tasks\Avira
2017-07-16 19:04 - 2017-07-16 19:04 - 000000000 ____D C:\Users\azca\AppData\Local\Avira
2017-07-16 19:03 - 2017-07-16 19:31 - 000000000 ____D C:\ProgramData\Avira
2017-07-16 19:03 - 2017-07-16 19:06 - 000000000 ____D C:\Program Files (x86)\Avira
2017-07-16 19:01 - 2017-07-17 10:08 - 000045472 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2017-07-16 18:52 - 2017-07-16 18:52 - 000000000 ____D C:\Program Files\Malwarebytes
2017-07-16 18:50 - 2017-08-04 11:24 - 000000000 ____D C:\ProgramData\GlarySoft
2017-07-16 18:48 - 2017-08-04 11:24 - 000000000 ____D C:\Users\azca\AppData\Roaming\GlarySoft
2017-07-16 18:48 - 2017-07-16 18:48 - 000000000 ____D C:\Users\azca\AppData\Roaming\DiskDefrag
2017-07-16 18:42 - 2017-07-30 11:43 - 000000000 ____D C:\AdwCleaner
2017-07-16 18:34 - 2017-07-16 18:57 - 000000000 ____D C:\Users\azca\AppData\Roaming\thdr
2017-07-16 18:30 - 2017-07-16 19:26 - 000000000 ____D C:\Program Files (x86)\rwq0e2pnh3d
2017-07-16 18:30 - 2017-07-16 19:07 - 000000000 ____D C:\Program Files\FIU135PTW7
2017-07-16 18:30 - 2017-07-16 19:07 - 000000000 ____D C:\Program Files (x86)\r0zhi05qlff
2017-07-16 18:30 - 2017-07-16 18:57 - 000000000 ____D C:\ProgramData\WindowsErrorReporting
2017-07-16 18:30 - 2017-07-16 18:57 - 000000000 ____D C:\Program Files\L706E92UFF
2017-07-16 18:30 - 2017-07-16 18:30 - 000000000 ____D C:\Windows\Azart
2017-07-16 18:30 - 2017-07-16 18:30 - 000000000 ____D C:\Users\azca\AppData\Local\CrashRpt
2017-07-16 18:29 - 2017-07-16 23:40 - 000000000 ____D C:\Users\azca\Documents\Mes ordinateurs virtuels
2017-07-16 18:28 - 2017-07-16 18:29 - 247086809 _____ C:\Users\azca\Downloads\jeu-01594-mysteres_de_louxor_cd1-pcwin.7z
2017-07-16 18:28 - 2017-07-16 18:29 - 157747000 _____ C:\Users\azca\Downloads\jeu-01594-mysteres_de_louxor_cd2-pcwin.7z
2017-07-16 18:28 - 2017-07-16 18:28 - 004662212 _____ C:\Users\azca\Downloads\les_mysteres_de_louxor-nt.rar
2017-07-16 18:27 - 2017-07-16 19:41 - 000000000 ____D C:\Program Files (x86)\Microsoft Virtual PC
2017-07-16 18:16 - 2017-07-19 01:21 - 000000000 ____D C:\Users\azca\AppData\Roaming\BitTorrent
2017-07-16 18:16 - 2017-07-16 18:16 - 002408648 _____ (BitTorrent Inc.) C:\Users\azca\Downloads\BitTorrent (1).exe
2017-07-15 10:41 - 2017-07-15 10:41 - 065901908 _____ C:\Users\azca\Downloads\WNA1000Mv2_V1.0.0.3_Setup.zip

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2017-08-04 11:26 - 2016-06-19 17:18 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-08-04 11:22 - 2016-06-16 17:59 - 000000000 ____D C:\Users\azca\AppData\Roaming\Skype
2017-08-04 11:11 - 2009-07-14 06:45 - 000025936 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-08-04 11:11 - 2009-07-14 06:45 - 000025936 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-08-04 09:17 - 2010-11-21 08:19 - 000750384 _____ C:\Windows\system32\perfh00C.dat
2017-08-04 09:17 - 2010-11-21 08:19 - 000151446 _____ C:\Windows\system32\perfc00C.dat
2017-08-04 09:17 - 2009-07-14 07:13 - 001673006 _____ C:\Windows\system32\PerfStringBackup.INI
2017-08-04 09:17 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2017-08-04 09:13 - 2016-06-12 17:45 - 000000000 ____D C:\ProgramData\NVIDIA
2017-08-04 09:11 - 2016-06-16 13:04 - 000000000 ____D C:\Program Files (x86)\Hi-Rez Studios
2017-08-04 09:11 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-08-03 03:55 - 2017-01-28 20:31 - 000000000 ____D C:\Users\azca\AppData\Local\Battle.net
2017-08-03 01:57 - 2017-01-28 20:49 - 000000000 ____D C:\Program Files (x86)\Heroes of the Storm
2017-08-02 22:55 - 2017-04-02 19:46 - 000000000 ____D C:\Program Files (x86)\Blizzard App
2017-07-30 11:48 - 2017-07-01 18:33 - 000000000 ____D C:\Users\azca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HT1H
2017-07-30 11:48 - 2017-03-10 02:08 - 000000000 ____D C:\Users\azca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HandBrake
2017-07-30 11:48 - 2017-03-09 02:18 - 000000000 ____D C:\Users\azca\Desktop\Vegas Montages
2017-07-30 11:48 - 2017-03-02 16:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2017-07-30 11:48 - 2017-01-28 20:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2017-07-30 11:48 - 2016-09-15 18:02 - 000000000 ____D C:\Users\azca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2017-07-30 11:48 - 2016-09-01 17:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2017-07-30 11:48 - 2016-08-19 17:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Flyff
2017-07-30 11:48 - 2016-06-16 15:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2017-07-30 11:48 - 2016-06-16 11:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Assistant Smart Wizard NETGEAR pour WNA1000M
2017-07-30 11:42 - 2016-09-01 18:52 - 000000000 ____D C:\Users\azca\AppData\Roaming\DAEMON Tools Lite
2017-07-30 11:42 - 2016-06-18 13:19 - 000000000 ____D C:\Users\azca\AppData\Local\CrashDumps
2017-07-23 11:01 - 2017-04-09 12:19 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2017-07-20 13:28 - 2017-04-09 12:20 - 000000974 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 12.lnk
2017-07-20 13:28 - 2017-04-09 12:20 - 000000962 _____ C:\Users\Public\Desktop\TeamViewer 12.lnk
2017-07-17 10:10 - 2016-06-18 12:37 - 000000000 ___SD C:\Users\azca\AppData\LocalLow\Temp
2017-07-17 00:17 - 2016-06-12 17:25 - 000000000 ____D C:\Users\azca
2017-07-16 20:52 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system
2017-07-16 20:44 - 2016-11-28 01:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2017-07-16 20:44 - 2016-09-01 18:52 - 000000000 ____D C:\ProgramData\DAEMON Tools Lite
2017-07-16 19:34 - 2016-06-19 17:15 - 000000000 ____D C:\ProgramData\RogueKiller
2017-07-16 19:30 - 2016-06-18 14:47 - 000000000 ____D C:\ProgramData\Origin
2017-07-16 19:29 - 2016-06-12 17:45 - 000000000 ____D C:\ProgramData\Package Cache
2017-07-16 19:29 - 2016-06-12 17:35 - 000058728 _____ C:\Users\azca\AppData\Local\GDIPFONTCACHEV1.DAT
2017-07-16 19:27 - 2017-04-02 19:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Application Blizzard
2017-07-16 19:27 - 2017-03-08 20:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2017-07-16 19:27 - 2017-03-02 16:57 - 000000000 ____D C:\Users\azca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
2017-07-16 19:27 - 2016-11-29 02:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GSC Game World
2017-07-16 19:27 - 2016-09-07 01:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PlaysTV
2017-07-16 19:27 - 2016-08-31 22:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Abandonware-France
2017-07-16 19:27 - 2016-06-12 17:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sonic Radar
2017-07-16 19:27 - 2009-07-14 05:20 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2017-07-16 19:26 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\registration
2017-07-16 18:57 - 2009-07-14 05:20 - 000000000 ____D C:\Program Files\Dell Photo AIO Prisive Pack
2017-07-15 13:16 - 2016-06-18 14:47 - 000000000 ____D C:\ProgramData\Electronic Arts
2017-07-13 15:10 - 2017-04-27 18:44 - 000000000 ____D C:\Program Files (x86)\Skype
2017-07-13 15:10 - 2016-06-22 01:18 - 000000000 ____D C:\ProgramData\Skype
2017-07-10 23:27 - 2016-09-07 01:38 - 000000000 ____D C:\Users\azca\AppData\Roaming\PlaysTV
2017-07-10 17:36 - 2017-04-19 18:17 - 000000000 ____D C:\Users\azca\AppData\Roaming\discord

==================== Fichiers à la racine de certains dossiers =======

2017-04-30 23:31 - 2017-04-30 23:31 - 000036352 ___SH () C:\Users\azca\AppData\Roaming\Thumbs.db
2017-03-02 17:21 - 2017-03-02 17:21 - 000003584 _____ () C:\Users\azca\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-06-19 00:39 - 2017-06-19 00:39 - 000000000 _____ () C:\Users\azca\AppData\Local\{A4A22FD1-919C-46C4-B762-B8FA291A9F43}
2016-06-12 17:32 - 2016-06-12 17:32 - 000000000 ____H () C:\ProgramData\DP45977C.lfl
2016-12-22 01:38 - 2017-06-22 14:35 - 000005110 _____ () C:\ProgramData\NvTelemetryContainer.log
2016-12-22 01:38 - 2017-06-22 00:14 - 000005110 _____ () C:\ProgramData\NvTelemetryContainer.log_backup1

Certains fichiers dans TEMP:
====================
2017-07-30 11:51 - 2010-11-21 05:23 - 001731936 _____ (Microsoft Corporation) C:\Users\azca\AppData\Local\Temp\dllnt_dump.dll

==================== Bamital & volsnap ======================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement

LastRegBack: 2017-08-01 00:01

==================== Fin de FRST.txt ============================